Mozilla Backtracks On Third-Party Cookie Blocking 173
An anonymous reader writes "Remember when Mozilla announced that it would soon block third-party cookies by default? Not so fast. According to a new behind-the-scenes report in the San Francisco Chronicle, 'it's not clear when it will happen — or if it will at all.' Mozilla's leadership is apparently no longer committed to the feature, and the related Cookie Clearinghouse collaboration is delayed well into 2014. Who's to blame? According to Dan Auerbach, Staff Technologist at the Electronic Frontier Foundation, 'The ad industry has a ton of people, basically lobbyists, who spent a lot of time trying to convince Mozilla this was bad for the economy... I think they were somewhat successful.' Not a good showing for the purportedly pro-user organization."
Mozilla is not free (Score:1, Informative)
Re: (Score:1)
What does AD stand for?
Re: (Score:3)
Advertisement
Re: (Score:1)
What does the D stand for?
Re:Mozilla is not free (Score:5, Funny)
What does the D stand for?
Dvertisement
Re:Mozilla is not free (Score:5, Funny)
What does AD stand for?
After Disgrace. It's the period of time that follows Before Commercialization.
Re:Mozilla is not free (Score:5, Informative)
More like ONE organization (Google). At one point, they were getting over 90% of their funding from Google alone. I imagine that may have had something to do with this reversal.
Re: (Score:2)
I would love to see an organization like wikipedia take over a browser. Let them do their once a year fundraiser. They could block whatever they like out of the box.
Re: (Score:2)
Because wikipedia does so well being independent, along with all the PR folks hired to edit articles for corporations and edit them negatively for said corporations' competition?
I would not like to see it happen, wikipedia can't even manage the shit the're responsible for.
Re: (Score:3)
Because wikipedia does so well being independent, along with all the PR folks hired to edit articles for corporations and edit them negatively for said corporations' competition?
Does that really affect how Wikipedia runs, though?
Sure, their content is often biased by monied interests, but that goes hand-in-hand with making a publicly-edited encylopedia. It would be difficult to crack down on that without at the same time infringing on the rights of individuals.
But has Wikipedia ever backed down or changed i
Re: (Score:2)
The problem is, it's the internet. The ability to subvert a focus due to competition is easily, easily noticeable.
Look at google, MS and apple articles for an easy example of that. Google's have all this "criticism" and "controversy" and almost daily MS and apple have PR folks trying to remove said categories. It's not accidental, it's actually known by sock puppets. Internet access multiplies the ability of monied interests to subvert pure and unbiased interests - so no, it's not the same as a publicly ed
Re: (Score:3)
Wikipedia?
All of a sudden Jimmy Whales' huge face would appear over your entire browser window begging for money.
NO WAY.
Re: (Score:2)
Wikipedia?
All of a sudden Jimmy Whales' huge face would appear over your entire browser window begging for money.
Yeah, and he'd be asking you to stuff it into his blow hole!
Re: (Score:2)
I don't really understand the problem people have with Wikipedia's method of funding. Begging so a free service can remain free without advertisers since apparently as I've heard parroted over and over again, having ads on Wikipedia would somehow compromise everything it stands for? So what?
Re: (Score:2, Interesting)
Disclaimer: I work for an ad company.
You know, I'm not sure that Mozilla backtracking on this is such a bad idea. Actually, it may have been a bad idea to announce it in the first place. Fearing the loss of third party cookies (which IMO is not that much of a privacy issue) ad companies were forced to develop alternative methods to track people. Now, the cat is out of the bag and this tracking is already effective on all Safari browsers (which have always blocked third-party cookies - take that Apple haters
Re:Mozilla is not free (Score:4, Insightful)
Your first line proves you can't be impartial.
Third party cookies are a huge privacy issue. Alternative methods to track are not something anyone was forced to do. Advertisers have no need to track users. they lacked that with old media and survived.
Personally the law should step in and make this illegal.
Also please take Bill Hick's advice at your earliest convenience.
Re: (Score:2)
Bullshit. Just because one is employed by in an industry in no way invalidates their truthfulness or impartiality off the job.
The rest of the post may give you that opinion, but his simply working in an industry shouldn't.
Re: (Score:2)
If their new magic pixie dust is browser fingerprinting, then that's going to be ineffective in a few years also. That problem has already been solved. You can now configure your browser not to pass any extra info in its requests; no list of fonts, no list of add-ons, no plugin versions, no time zones, only a generic (and often deliberately inaccurate) useragent, etc. Flash cookies are blocked, too. Cache is disabled. Even first party cookies get deleted when the tab is closed.
What's left?
Granted this isn't
Re: (Score:2, Interesting)
Original AC here. Your point is all well and good, but for the fact that it is wrong. By tracking users adverting companies make MORE money, not less. Thus, they attract more publishers and more advertisers. And IT FUCKING WORKS.
So stop pretending for a minute that you hold the key to the ultimate truth "people will go away from your business" when reality has proven the very opposite for 10+ years now.
Come back on earth with the rest of us. It's not all pink bunnies and fluffy hugs, but that's reality.
Re: (Score:2)
I would love to see an organization like wikipedia take over a browser. Let them do their once a year fundraiser. They could block whatever they like out of the box.
I can see a Wikizilla browser now:
Don't agree with a feature, edit it. then watch it get reverted by a later edit
Features get renamed by some drive by joker who thinks it's , to be Frank, err Francis,funny
Click on a feature and get the popular "This feature is a stub and needs more coding to work. Can you help?"
Opening up history and getting "cite needed" since ether all are single sources of information
Re: (Score:2)
I would love to see an organization like wikipedia take over a browser. Let them do their once a year fundraiser. They could block whatever they like out of the box.
A fundraiser? You think a bake sale would raise the $5,391,119 dollars [guidestar.org] per year they spend?
Perhaps if they sold cookies -- oh, wait.
What if they *are* right? (Score:2, Interesting)
Re: (Score:2)
Sales and advertising are very different.
I buy eneloops/tenergy batteries on amazon, I have never in my life seen any advertising for these batteries.
Re: (Score:2)
Indeed the only advertising (if that) I've seen for those batteries (I've also bought 'em) have been comments on...well...Amazon.
But yeah, adders* don't need to track. They were doing just fine with fun jingles in TV show breaks, SHOOT THE MONKEY internet banners, and not taking up so much time that said TV shows had to trim their openers and end-credits to absurdly short lengths...while still having to product-place anyway.
*Just for brevity, but given how their venom has brought even Mozilla to their knee
Re: (Score:2)
well, surely if the advertisers didn't get money they couldn't use that money to lobby for keeping 3rd party cookies in mozilla!
Re: (Score:1)
That's alright, Mozilla. You make your choice and I make mine. For a long time now, I have blocked ALL 3rd party cookies. Sure there are a handful of sites that I can't use, like my local city's newspaper site, but I don't really need them. I believe that no one should have to accept 3rd party cookies to use a website. If they insist on 3rd party cookies, then I won't use it.
Re:What if they *are* right? (Score:4, Informative)
churn a hell of a lot of money through the world economy
This is an (implied) false dichotomy. It is not as if, without advertising in this way, economic activity would just disappear. The money would simply get spent on other things that people decide that they want. An economy is essential, yes, but no business model/music label/Wall Street bank is required for that.
Re: (Score:2)
mozilla has ties to google.
that's all there needs to be said. if you work 'with' google, you better NOT fuck with their ad revenue.
Re: (Score:2)
citation provided:
http://www.extremetech.com/internet/92558-how-browsers-make-money-or-why-google-needs-firefox [extremetech.com]
Re: (Score:2)
The result is a race to the bottom, as we have already seen o
Re: (Score:3, Interesting)
Mozilla are giving the choice, they just are trying to decide on a sane default. Aside from the advertising issue, blocking third party cookies could break behaviour that the user is expecting. I haven't really looked into it, but maybe things like sites which use your Facebook account for authentication for example? I get that a lot of Slashdotters aren't interested in that type of facility, but your average internet user doesn't want their browser screwing around with what they can do online, no matter th
Re: (Score:2, Informative)
I have third party cookies disabled and I can login with facebook (and twitter and google) on third party sites just fine.
Re: (Score:2)
let broken behavior be, well, broken!
stop burying badness behind technology. 3rd party cookies are almost always evil and there's no valid excuse for it other than SPYING.
have we had enough of spying, yet? 2013 is the year where most people finally woke up to the spy-ridden world we live in.
time to say 'ENOUGH!'
Re:What if they *are* right? (Score:5, Insightful)
I haven't really looked into it,
Maybe you should, then, before posting nonsense. Neither Facebook nor OpenID nor any of the similar schemes use 3rd party cookies.
Re:What if they *are* right? (Score:4, Informative)
Aside from the advertising issue, blocking third party cookies could break behaviour that the user is expecting
Blocking third party cookies is the Safari default. If the site works for Mac and iOS users, it'll work for Firefox users too.
IIRC, fewer than 10% of Safari users have gone and turned on third-party cookies.
Use DoNotTrackMe in other browsers (Score:2)
Actually, use it in Safari, too... https://www.abine.com/dntdetail.php [abine.com]
Aside from the advertising issue, blocking third party cookies could break behaviour that the user is expecting
Blocking third party cookies is the Safari default. If the site works for Mac and iOS users, it'll work for Firefox users too.
IIRC, fewer than 10% of Safari users have gone and turned on third-party cookies.
Good point, but Safari will still fetch web bugs and run any 3rd-party code.
Mozilla's "threat" is just tweaking the edges of the problem. Anti-tracking needs to be comprehensive and implemented fully on the client by an independent coder (the 'other' anti-tracking addon is in partnership with the ad industry).
Re: (Score:2)
Re: (Score:2)
Why bother? (Score:2)
Turn on permanent private/incognito Browsing mode. Done.
I let sites I visit set whatever obnoxious privacy-stealing cookies they want - Because those cookies cease to exist outside the current tab.
Re: (Score:2)
Re: (Score:2)
Alternately, you could use Albine's [abine.com] DoNotTrackMe [mozilla.org] add-on if you don't want to use an add-on funded by advertisers and businesses paying them for ad data and compliance
Although from what I understand, the only info that both apps send back to the mothership is generic usage data, so the risk (or lack thereof) is probably the same for both.
Re: (Score:2)
I have that on my Firefox browser, and I have a Chrome browser that clears everything on exit. Between them, I can surf anywhere and keep tracking to a minimum. Won't stop the NSA, of course, but...
I have it on good authority (Score:2)
Ahhh those "lobbyists" and their quirky italian accent... That'sa badda forr dee economee...
Re: (Score:1)
Wouldn't a fox head be more appropriate?
Or maybe a gecko head.
Re: (Score:2)
Re: (Score:2)
Re: (Score:2)
Genetics.
You are a few years out of date here (Score:3)
"purportedly pro-user organization"
Yeah right. Someone hasnt been paying attention to them for many years, it does appear.
Thick Skulls (Score:5, Insightful)
Why should web marketers feel entitled to additional data just because of the media change. When I read a newspaper, marketers can't even tell I read an ad much less who I am or what I did before or after reading the ad. They have the ability to tell the browser requested the ad, that should be all info they get about anyone.
Re: (Score:2, Interesting)
They are willing to pay more for the advert if they know how many people see it. That's what the internet does for them, it makes marketing more efficient and measurable.
Re: (Score:1)
Re: (Score:2)
If you don't click on an add, they pay less (or not at all.) Try that with Radio, TV or billboards. You actually pay more and then have no idea if it's working.
Re:Thick Skulls (Score:4, Insightful)
Why should web marketers feel entitled to additional data just because of the media change. When I read a newspaper, marketers can't even tell I read an ad much less who I am or what I did before or after reading the ad. They have the ability to tell the browser requested the ad, that should be all info they get about anyone.
The simple answer is "MONEY." The more they know, the more they can charge.
Re: (Score:2)
You should replace Marketers with Google, since Google owns like 98% of the online marketing and advertising market (through AdSense, DoubleClick and MANY other advertising companies an
Proves my post about honesty in another topic (Score:2)
All open source projects are heavily vulnerable to bribery; honesty alone triumphs.
http://slashdot.org/comments.pl?sid=4411077&cid=45334083 [slashdot.org]
Ad industry goons have gazillions more cash to throw than ideologists in the open source world can say no to.
Re: (Score:2)
How is that different than Free/libre software or commercial projects?
The ad industry has lots of money and bribes developers of all kinds, or at least tries too.
Re: (Score:2)
How is that different than Free/libre software or commercial projects?
The motivation for developing a non-free commercial software is to make money; not necessarily by making a superior product.
Open source code is developed to engineer superior products, period. Which is why open source alternatives are more largely adopted by users than proprietary ones. Hence the ad industry needs to bribe open source developers; to make them foresake their ideals, and compromise their users.
Dan Auerbach? (Score:1)
Dan Auerbach? That guy makes great music...
Time to fork (Score:4, Interesting)
Time to fork Firefox and have a totally privacy minded browser , no advertisement , no user tracking possible and no third party cookies.
We need to be secure and free from the tyranny of advertisers and spying agencies. Time to make a browser that have OUR ( We the Users ) interests in mind.
It's time to make a fork and may the man who has the interests of the users in mind win .
Re: (Score:2)
It already exists. It called TOR (which uses firefox btw)
Re: (Score:1)
Being pedantic, you mean the Tor Browser Bundle [torproject.org], of which Tor [torproject.org] is but one component. And using Firefox as the base browser is not without problems [torproject.org].
Re: (Score:1)
Tor Project makes an effort to cleanse Firefox for all privacy invasive "features" prior to adding it into the Tor Browser Bundle. I guess that could serve as a good basis for a privacy-oriented fork.
Re:Time to fork (Score:5, Informative)
humm... why fork?
the option to manually disable third party cookies is still there, it's not just enabled by default. Other than ads companies, big sites also use cookies between their multiple sites, changing that default could break big sites not ready for that change, throwing even more pressure for mozilla not change the default (breaking current sites is always very dangerous and tricky)
but anyway, firefox is one of the most privacy oriented browsers. If you install the add-ons noscript + requestpolicy and/or ghostery you are blocking almost all ways of tracking. add the "better privacy" to the list to also remove flash cookies (if you allow then) and be done.
having all this by default is hard, not only because the user-friendly, but because could rage many companies against mozilla if done alone... now try to talk to google to do the same to chrome (and by the way, disable the auto-submit of everything one writes to the url bar to the google servers)
Re: (Score:2)
Opera tried changing to blocking third-party cookies by default, and had it break a lot of major Russian sites. Needless to say, the change lasted from 10.50 to 10.51 --- with less than a week between those releases.
Re: (Score:2)
the option to manually disable third party cookies is still there, it's not just enabled by default.
its not sticky, either. I use prefbar for firefox (have been since 1.x or 2.x days) and I like being able to click on a direct widget to enable/disable cookies, jscript, animations (!), etc.
problem is, if you disable cookies, it turns them all off (good) but when you click the prefbar cookie button, it re-enables 3rd party again! you have to do into prefs (menu) and turn it off, which defeats the whole conv
Re: (Score:2)
Sounds like a bug in your add-on, not in Firefox.
Re: (Score:2)
The problem is that, since it is the default, people are coding their sites to rely on it. I keep finding discussion forums that don't work without them. Having this insecure default corrupts the entire system. The worst-case scenario is that you won't be able to purchase anything online without having 3rd-party cookies enabled, because devs just assume it is on.
Re: (Score:2)
Agree.. that is why we had several tried to disable that kind of cookies.
They should never exist in the first place... but as they exists right now, its hard to kill that beast!
the top usage for then is for sure the tracking of users, but is not the only usage. if no browser break that feature, not site will fix this... if no one fix their site, it's very hard for the browsers to change the default
No matter (Score:2)
Informed users have any number of plugins to ensure their privacy while browsing. I personally use ghostery (breaks a minimum of sites), Adblock (currently disabled, but doesn't reall break anything) and NoScript (which makes browsing hell, but does a damn good job). Plus I block third party cookies and clear all other cookies on browser restart, clear all flash cookies on restart via Ghostery (and store them in a ramdisk for good measure) and disable HTTP referers (depressingly spelled incorrectly). Nothin
The real problem (Score:3)
The real problem is that sites are starting to expect this behavior by default. Someone with a lot of clout needs to ship a browser with 3rd-party cookies disabled, so sites stop relying on it.
When did Mozilla enable 3rd-party cookies? The original Netscape cookie specification back in the 90s specifically stated rules to prevent 3rd-party cookie usage. Yet somehow today it is on by default in most browsers. How and why did that change? There's simply no reason for it.
Re: (Score:2)
original web was NOT supposed to be wizzywig. it was supposed to tag elements and let the browser render. that separation of content and format was important!
but now we went all WW and so the web is yet another useless advertising medium, owned by Business and taken away from where it got its roots (techies).
programming for IE or FF or whatever browser is a stupid idea, but everyone accepts it as a way of how things have to be. sigh ;(
Mozilla have sold out? (Score:2)
The organization I most expected to be working towards our privacy and telling lobbyists to piss off has now sold out, apparently.
Do you have any idea how many metrics and tracking companies have their shit on pages? Do you think that we want all of that crap so that s
Third Party Cookies and Safari (Score:5, Interesting)
Re: (Score:2)
Apple's Safari already blocks third party cookies by default, and it is the number one browser on mobile devices. So why is the advertising industry is fighting hard to prevent Mozilla from blocking third party cookies by default while keeping quiet about Apple's Safari browser? Something is wrong here!
Lots of 'normal' users talk about how much they hate viewing websites on their phones and 'need' apps. In a conversation with them they might say "Do you have the app for this website", and I'll say "No, it's a website, I just go to the website". To which they respond with tears in their eyes "But the app is soooo much better. It's more than a website". Most people refuse to visit a website on their phone, they only want to access the internet through apps. So the amount of browsing that occurs in the mobil
Re: (Score:2)
Not even just Apple. The Android store lets you see in finer detail exactly what each app needs permissions for in order to run. Go download 'Free Jungle Race Birds Game' or whatever is in fashion right now and look at them - half those games require access to your phone contacts.
Re: (Score:2)
Mobile is different. You practically pay out of your own pocket for every additional thing downloaded to your device. Advertisers are more cautious about what they say and do for mobile, in particular because they don't want users to realize this yet. Everyone is still trying to find a better strategy.
Because lobbyists (Score:2)
Every single time something sh#tty happens which adversely affects the common population, there is a lobbyist. Has anything 'good' ever happened when these people were involved?
Re:This is bad (Score:5, Insightful)
Is it? You can still enable blocking of third-party-cookies, can't you? As long as most people can be tracked easily, advertisers may leave us "advanced users" alone. Not worth the effort. When everybody blocks third party cookies, how long do you think it will take for the advertisers to track everybody in a different way? Personally I think we should stop pushing privacy enhancements on people who clearly do not give a rats ass about being tracked. People still subscribe to Facebook and Whatsapp. Giving these people privacy enhancements is a waste. Pearls before swine.
Re:This is bad (Score:5, Insightful)
In a example everyone can relate to: if you don't know anything about mechanics it's ok for the gas stations to fuel you up with shitty gasoline. At the same price. Everyone deserves a certain amount (the more the better in my pov) of passive protection, even if they engage in risky behavior (use Facebook for one).
Re: (Score:2)
The different approach is to make ad pages. A page with ads for computers, a page with ads for peripherals, and so on. Possibly with price comparisons for different vendors.
See, this idea I like. Instead of shitting all over hell and creation with increasingly hostile and abusive techniques, I'd love some kind of meta-catalog (these days, I and people I know tend to use Amazon as a make-do, but that brings its own issue). Something like pricewatch, but with a UI that doesn't make me do a double-take to make sure I didn't mistype the URL and end up on some domain squatter's landing page.
Re: (Score:2)
The ad industry mostly puts ads into pages about other stuff,
You mean like TV, newspapers, magazines, etc?
Re: (Score:2)
Names should be named.
Lets make it recursive and then name the names of the named
Re:Anyone can disable third-party cookies ... but (Score:5, Informative)
That's odd, because I've been running with third-party cookies blocked for years with no obvious problems.
Re: (Score:2)
That's odd, because I've been running with third-party cookies blocked for years with no obvious problems.
What have you got in your exeption list? I started building a list (with google.com so that 3rd party sites could log in, etc) but gave up.
Re: (Score:2)
That's a very good method if you have very few sites to log into that you want to remember your authentication. The problem is, I have way too many sites to waste time whitelisting a bunch, and then realizing that I forgot one. So I just disable all third-party cookies and leave it alone. After all--I don't really mind the sites I'm actually visiting storing cookies for the most part. It's the people I never intended to communicate with that can fuck off. I use Adblock Plus, NoScript, DoNotTrackMe and
Re: (Score:3)
Verified by visa only reliably works on a vulnerable version of IE. Anything else and it's completely random whether a particular card/website combination will work.
In the end I changed my credit card to one that doesn't use VbV actually it's Mastercard so securecode (I think) because I got fed up of not being charged, being double charged, getting stuck half way through the process, forgetting my password which I then couldn't reset to something I wouldn't forget because it remembers the last 10^20 passwor
Re: (Score:2)
that VbyV stuff never seemed to matter when I encountered it. for newegg (a few yrs ago) they would always pop that crap up and I'd ^w it immediately.
my sale always went thru and newegg never cared.
not sure what VbyV is about, but it sure seemed optional.
Re: (Score:2)
Yeah, it used to be optional (provided you never did it - once you'd done it once you were committed forever more) but eventually it became mandatory.
My current card I usually get a "Your card has been enrolled in VbyV and you're being redirected" but provided I allow the "cross site scripting attacks" that are generated it then goes through without any further prompting.
I remember that gner (now eastcoast) only used to work if I disabled javascript just before clicking on the BUY button
Re: (Score:2)
You must have turned off *all* cookies.
No.
Re:This is great news! (Score:5, Insightful)
You want a free & open internet? Remove you ad blocker & help pay for the services you use for free.
We had a 'free and open internet' long before ads appeared.
Concerned about your privacy with ads? Wait till everyone starts "pay-walling" their websites (eg WSJ, NYT etc) and you have to shell out cash AND give up your credit card.
I have a simpler solution: I just don't go to paywalled sites.
Re: (Score:2)
We had a 'free and open internet' long before ads appeared.
Only in the sense of a hand-out sheet as opposed to a magazine. I was there too. Tip jar buttons are ads as well, just small, specific to site and somewhat (not always) unobtrusive.
Re:This is great news! (Score:5, Insightful)
No, the internet runs on computers. It's being co-opted by advertisers.
Not my fucking problem. I don't give a rats ass about the profitability of online advertisers, I care about my privacy.
Or stop using them. The day I need to pay money to a website and provide them with credit card details is the day I stop visiting a site.
Re: (Score:2)
we never gave micropayments a try.
a penny or a fraction of it to see a website. sounds reasonable to me. you get your damned funding and you stop the stupid blinking shit and tracking shit!
win/win.
but we'll never do it. because, well, FUCK YOU, is why.
(ie, no reason at all)
Re: (Score:2)
Hardware, software, energy, somebody's gotta pay for these things. If you don't pay directly, then the advertisers do.
It sounds like what you want is a free lunch. There is no such thing.
Re: (Score:3)
Amazing, I wonder what advertising platform paid for the Internet before this generation of marketers declared themselves essential to pay for the Internet? I can host a website for $4.99 a month, buy a Linux VM for $20 a month. Plenty of content is made by people not paid by your advertising dollars. Advertisers, we don't need you, don't test us.
Re: (Score:2)
Computers cost money... How do you think companies pay for them? Advertising.
Not really.
Currently my company has 6 web servers online, happily serving up content. Right now our Sonicwall is moving data at 30mbps, to make sure all those little users get their little content. Traffic should peak for today at around 35mbps within a couple of hours from now.
How do we pay for those servers and that network connection and the Sonicwall and everything else we have sitting on our network at the data center that we rent space from? We provide a useful service. Our customers pay us for th
Re: (Score:2)
Re: (Score:2)
Then based on that claim, I can install and run AdBlock Plus, NoScript, DoNotTrackMe, etc. in my web browser to display the sites that I request the way I would prefer to view them and the advertisers can just shut the fuck up. But no, they seem to think that it's "wrong" to render HTML as you see fit and to block their garbage. Shit, this article alone is yet another confirmation that the assholes don't want us to block their cookies (ie. tracking method). Fuck them, I'll block it as I damn well please-
Re: (Score:2)
Re: (Score:2)
I'm a developer who writes free "apps".
And I'm the god of the universe. You're an AC who is delivering an anecdote. I need to believe you and/or change to your stated view of things why?